Know what the gate checks
The export gate reads the same readiness model as the dashboard: inbox lifecycle status, managed MTA assignment, SMTP host, port, and username metadata, IMAP metadata, encrypted credential and password hash presence, and recent smoke-test logs. Any missing input blocks that row.
- Inactive or retired inboxes block until status changes.
- Missing SMTP or IMAP connection metadata blocks until configured.
- Missing credential metadata blocks until credentials are re-provisioned.
Read blocked rows without secrets
Blocked rows carry a customer-safe failure type and a redacted reason. That is deliberate: plaintext SMTP passwords are one-time creation outputs, and later reads return redacted metadata only. Remediation works from the reason, never from recovering a stored secret.
- Match each redacted reason to its readiness input.
- Rotate credentials through the managed workflow when credential integrity fails.
- Escalate to the recovery workflow when the same row blocks repeatedly.
Re-export only the fixed rows
After remediation, re-run the export for the affected inboxes and confirm the rows now pass. Provider acceptance completes account setup only; campaign launch still depends on the workspace launch gate and fresh seed-placement evidence.